Fixed vulnerabilities (#93)

* Fixed vulnerabilities * Reverted to old versions for some dependencies exasol-jdbc was erronously to 24.0.0 which is not available. jackson-databind needs to be < 2.16.0 do maintain compatibility to spark 3.3.0. * Prefer SuppressWarning to -Xlink deprecation
exasol · Mar 14, 2024 · c165b5b · c165b5b
1 parent 4e4b4de
commit c165b5b
Show file tree

Hide file tree

Showing 18 changed files with 625 additions and 198 deletions.
diff --git a/.gitattributes b/.gitattributes
@@ -1,11 +1,10 @@
-.github/workflows/broken_links_checker.yml                       linguist-generated=true
-.github/workflows/dependencies_check.yml                         linguist-generated=true
-.github/workflows/ci-build.yml                                   linguist-generated=true
-.github/workflows/release_droid_print_quick_checksum.yml         linguist-generated=true
-.github/workflows/release_droid_prepare_original_checksum.yml    linguist-generated=true
-.github/workflows/release_droid_upload_github_release_assets.yml linguist-generated=true
-.settings/org.eclipse.jdt.core.prefs                             linguist-generated=true
-.settings/org.eclipse.jdt.ui.prefs                               linguist-generated=true
-dependencies.md                                                  linguist-generated=true
-doc/changes/changelog.md                                         linguist-generated=true
-pk_generated_parent.pom                                          linguist-generated=true
+.github/workflows/broken_links_checker.yml  linguist-generated=true
+.github/workflows/dependencies_check.yml    linguist-generated=true
+.github/workflows/dependencies_update.yml   linguist-generated=true
+.github/workflows/release.yml               linguist-generated=true
+.github/workflows/ci-build.yml              linguist-generated=true
+.settings/org.eclipse.jdt.core.prefs        linguist-generated=true
+.settings/org.eclipse.jdt.ui.prefs          linguist-generated=true
+dependencies.md                             linguist-generated=true
+doc/changes/changelog.md                    linguist-generated=true
+pk_generated_parent.pom                     linguist-generated=true
diff --git a/.github/workflows/broken_links_checker.yml b/.github/workflows/broken_links_checker.yml
diff --git a/.github/workflows/ci-build-next-java.yml b/.github/workflows/ci-build-next-java.yml
@@ -8,6 +8,12 @@ on:
 jobs:
   java-17-compatibility:
     runs-on: ubuntu-latest
+    defaults:
+      run:
+        shell: "bash"
+    permissions:
+      contents: read
+      checks: write # Allow scacap/action-surefire-report
     concurrency:
       group: ${{ github.workflow }}-${{ github.ref }}
       cancel-in-progress: true
@@ -24,9 +30,9 @@ jobs:
           cache: "maven"
       - name: Run tests and build with Maven
         run: |
-          mvn --batch-mode --update-snapshots clean javadoc:javadoc -DtrimStackTrace=false  \
-              -Djava.version=17 -Dtoolchain.version=17 \
-              -Dorg.slf4j.simpleLogger.log.org.apache.maven.cli.transfer.Slf4jMavenTransferListener=warn
+          mvn --batch-mode --update-snapshots clean javadoc:javadoc \
+            -DtrimStackTrace=false -Djava.version=17 -Dtoolchain.version=17 \
+            -Dorg.slf4j.simpleLogger.log.org.apache.maven.cli.transfer.Slf4jMavenTransferListener=warn
       - name: Publish Test Report for Java 17
         uses: scacap/action-surefire-report@v1
         if: ${{ always() && github.event.pull_request.head.repo.full_name == github.repository && github.actor != 'dependabot[bot]' }}

diff --git a/.github/workflows/ci-build.yml b/.github/workflows/ci-build.yml
diff --git a/.github/workflows/dependencies_check.yml b/.github/workflows/dependencies_check.yml
diff --git a/.github/workflows/dependencies_update.yml b/.github/workflows/dependencies_update.yml